The Wayback Machine - https://web.archive.org/web/20221217083010/https://github.com/docsifyjs/docsify/pull/1615
Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade prismjs from 1.23.0 to 1.24.1 #1615

Closed
wants to merge 2 commits into from
Closed

[Snyk] Upgrade prismjs from 1.23.0 to 1.24.1 #1615

wants to merge 2 commits into from

Conversation

snyk-bot
Copy link
Contributor

@snyk-bot snyk-bot commented Jul 25, 2021

Snyk has created this PR to upgrade prismjs from 1.23.0 to 1.24.1.

merge advice
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 2 versions ahead of your current version.
  • The recommended version was released 22 days ago, on 2021-07-03.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Regular Expression Denial of Service (ReDoS)
SNYK-JS-PRISMJS-1314893		 584/1000
Why? Has a fix available, CVSS 7.4		 No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: prismjs from prismjs GitHub release notes
Commit messages
Package name: prismjs
  • 0fd01ea 1.24.1
  • 59db7ea Changelog for v1.24.1 (#2981)
  • 748ecdd Toolbar: Fixed styles being applies to nested elements (#2980)
  • 151121c Markdown: Fixed markdown not working in NodeJS (#2977)
  • 3432b4b 1.24.0
  • 46d0720 Updated `.npmignore` (#2971)
  • aef7f08 Changelog for v1.24.0 (#2965)
  • e9477d8 Markdown: Improved code snippets (#2967)
  • 4b55bd6 Made Match Braces and Custom Class compatible (#2947)
  • e8d3b50 ESLint: Added `regexp/strict` rule (#2944)
  • bfd7fde GraphQL: Fixed `definition-query` and `definition-mutation` tokens (#2964)
  • 14e3868 Fixed reST test
  • a7656de reST: Fixed `inline` pattern (#2946)
  • b4ac061 ESLint: Use cache (#2959)
  • 114e462 Elixir: Added missing keywords (#2958)
  • 42fabfe ESLint: Enabled `no-dupe-disjunctions` rule (#2951)
  • f471d2d Fixed problems reported by `regexp/no-dupe-disjunctions` (#2952)
  • d6ed8da Bump postcss from 7.0.32 to 7.0.36 (#2955)
  • ab7c995 JS: Added support for import assertions (#2953)
  • ac1d12f Liquid: Added Markup support, missing tokens, and other improvements (#2950)
  • abab910 JS Templates: Added SQL templates (#2945)
  • 34f24ac GraphQL: Added more detailed tokens (#2939)
  • 99f3ddc Tests: Automatically normalize line ends (#2934)
  • 8e93c5d Update `eslint-plugin-regexp` (#2942)

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@project-bot project-bot bot added this to Needs Review in Triage Jul 25, 2021
@vercel
Copy link

vercel bot commented Jul 25, 2021
edited

This pull request is being automatically deployed with Vercel (learn more).
To see the status of your deployment, click below or on the icon next to each commit.

🔍 Inspect: https://vercel.com/docsify-core/docsify-preview/Hyjp8qScWWXWuAamNMQAQjjQsmtu
Preview: https://docsify-preview-git-snyk-upgrade-293513f07e-40f0e5-docsify-core.vercel.app

@Koooooo-7
Copy link
Member

Koooooo-7 commented Nov 3, 2022

close via conflict.

@Koooooo-7 Koooooo-7 closed this Nov 3, 2022
Triage automation moved this from Needs Review to Triaged Nov 3, 2022
Koooooo-7
Koooooo-7 reviewed Nov 3, 2022
View changes
Copy link
Member

@Koooooo-7 Koooooo-7 left a comment

close.

@sy-records sy-records deleted the snyk-upgrade-293513f07e365659b405a94fe761800d branch Nov 6, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Koooooo-7 Koooooo-7

Assignees
No one assigned
Labels
None yet
Projects
Triage
  
Triaged
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@snyk-bot @Koooooo-7